电力信息与通信技术2024,Vol.22Issue(7):1-8,8.DOI:10.16543/j.2095-641x.electric.power.ict.2024.07.01
新型电力系统面向云边端架构的安全访问控制技术研究
Research on Security Access Control Technology for Cloud-edge-device Architecture in a New Type of Power System
摘要
Abstract
The construction of a new type of power system is developing in the direction of cloud-edge-device integration. While the cloud-edge-device architecture brings flexibility and scalability,it also brings problems such as data privacy security,illegal operations,and lack of standardized integration solutions. Based on this,this paper proposes a secure access control scheme (cloud-edge-device attribute-based access control,CED-ABAC) combining the characteristics of cloud-edge-device architecture. The scheme uses edge fusion terminals for re-encryption,which protects data security and reduces the communication cost of terminal devices. In terms of policy authorization,extensible access control markup language (XACML) is used to design authorization policies and policy matching algorithms,achieving simultaneous issuance of access control policies for multiple terminals,and more efficiently solving standardized integration problems. Meanwhile,through experimental simulation,it has been proven that the CED-ABAC scheme has significant advantages in efficiency and performance compared to existing schemes.关键词
新型电力系统/云边端/访问控制/XACMLKey words
a new type of power system/cloud-edge-device/access control/XACML分类
信息技术与安全科学引用本文复制引用
吴克河,韩扬,田峥,孙毅臻,吴雨希,过耀东..新型电力系统面向云边端架构的安全访问控制技术研究[J].电力信息与通信技术,2024,22(7):1-8,8.基金项目
国家电网有限公司总部管理科技项目资助"支持新型业务终端接入的威胁智能防控关键技术研究"(5700202223189A11ZN). (5700202223189A11ZN)
